Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-13870

Disclosure Date: June 05, 2020 (last updated February 21, 2025)
An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0